Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/UpAHPG3_keBtZWhbijPNE6ommbs.roa
File: UpAHPG3_keBtZWhbijPNE6ommbs.roa (raw, json)
Hash identifier: mdb5lUGFNqRgWsmIhpPXlMfujFIhQtjMezIuETrbmLI=
Subject key identifier: 52:90:07:3C:6D:FF:91:E0:6D:65:68:5B:8A:33:CD:13:AA:26:99:BB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UpAHPG3_keBtZWhbijPNE6ommbs.roa
Signing time: Thu 15 Sep 2022 02:40:35 +0000
ROA not before: Thu 15 Sep 2022 02:40:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 223.22.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5290073C6DFF91E06D65685B8A33CD13AA2699BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b2:9f:08:72:1a:b9:96:dc:98:b9:d7:bc:89:
0c:b2:45:f5:b0:dd:cf:df:3f:05:05:fd:a5:5d:4a:
89:5d:3a:c8:f5:a3:f0:85:1f:49:23:7b:57:65:e3:
3b:22:73:8e:c4:56:e2:7e:79:9e:ea:74:84:2a:53:
fd:7d:66:d0:77:d4:ca:0d:0f:c1:d7:a1:ce:2d:98:
6d:69:87:5d:f5:95:72:2d:5f:69:53:10:01:e1:1f:
6b:54:e5:95:a7:2b:e6:79:2d:6f:c2:c3:b9:fb:64:
81:62:34:da:6b:6e:4f:77:9a:ec:a1:a3:21:64:85:
c8:74:93:92:63:09:75:bf:25:ec:77:e5:33:9d:f2:
e2:88:20:6c:03:08:63:94:fd:37:34:67:2d:55:91:
18:51:fe:7e:a6:6e:cb:bb:20:8a:b9:71:76:c0:7c:
c1:22:82:49:54:73:b7:ba:ea:a7:01:b8:97:ef:92:
b8:e9:39:fb:4d:50:8f:91:d3:e9:8d:b5:1c:de:d0:
a2:40:24:14:1b:4d:67:b9:b4:16:97:6c:69:5b:49:
52:45:3b:eb:ba:b4:44:16:8f:aa:1c:2c:14:c0:a5:
62:63:e4:c4:51:ff:f2:37:3f:93:c8:16:32:2f:7e:
de:56:58:10:3a:05:64:0c:99:64:10:cc:1d:ec:5c:
4e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:90:07:3C:6D:FF:91:E0:6D:65:68:5B:8A:33:CD:13:AA:26:99:BB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/UpAHPG3_keBtZWhbijPNE6ommbs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/20
Signature Algorithm: sha256WithRSAEncryption
23:f2:47:42:2d:01:ae:6d:49:f5:6d:c3:6d:0e:75:55:9a:c7:
1d:93:c8:7d:9b:bd:71:18:b2:53:cb:e7:1c:e1:26:37:ba:28:
47:f8:68:f9:ed:e6:14:1f:f9:56:b7:48:69:24:16:03:ae:96:
1b:36:b1:24:00:4b:3c:3f:f8:d0:b3:85:d4:4a:b3:bf:46:e7:
a3:b0:68:fd:5f:7c:36:47:7d:f2:cb:75:91:83:b8:2c:7c:22:
94:f7:c3:22:8c:81:ac:57:09:c2:92:a8:77:a1:85:4b:20:a9:
79:0e:a2:58:d4:f8:a9:84:19:20:82:5e:65:fb:b6:34:47:46:
58:ec:6d:5e:c0:b4:0e:f7:d6:a3:1d:78:68:a6:bf:0f:5d:13:
b0:fa:75:11:9f:bb:07:d1:c4:9a:c8:4f:42:a3:09:bb:92:cc:
0d:c2:0c:e5:74:56:ae:a9:25:fd:f8:14:40:48:ac:cd:4c:9e:
ba:0c:7d:54:da:7e:57:92:7e:1e:9e:11:30:18:8a:f6:ca:01:
35:95:6f:af:16:ef:01:cb:a7:c0:dd:e0:d9:e4:1f:9d:01:69:
05:13:e7:4b:25:de:ce:d3:4f:4c:ea:5f:16:2a:fd:69:c8:67:
7d:51:70:6a:fa:ea:ba:45:69:07:10:c3:50:f8:2d:f8:47:04:
67:fb:60:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:31 2024 by rpki-client on console-fra.rpki-client.org